In all probability the IT dept is able to monitor all logins and passwords using the company equipment. This can be done from the server and even shutting down the terminal is not a secure method. Simple solution Browse don't post using the company equipment